Enterprise triggered 2CHK association

US 10,025,920 B2
Filed: 06/07/2012
Issued: 07/17/2018
Est. Priority Date: 06/07/2012
Status: Active Grant

First Claim

Patent Images

1. A method of operating a security server to securely transact business between a user and an enterprise via a network, comprising:

receiving, at the security server from an enterprise with which the user is currently connected via the network, a request of the enterprise to activate a secure communications channel over the network between the user and the security server, wherein the request includes contact information for contacting the user via other than the network;

transmitting, by the security server in response to the received activation request, an activation code for delivery to the user via other than the network and corresponding to the received contact information;

receiving, at the security server from the user via the network, an activation code;

comparing, at the security server, the received activation code with the transmitted activation code to validate the received activation code;

activating the secure communications channel based on the validation of the received activation code, wherein the activated secure communications channel is a channel in which data is encrypted based on the validated received activation code;

receiving, at the security server, transaction information including an identifier for identifying the enterprise;

generating, at the security server based on the received transaction information, a one-time password for use by the user as a transaction signature, wherein;

the one-time-password is generated as a function of the identifier and a secret known only by the security server and the enterprise;

and the secret comprises a predetermined value agreed upon by both the security server and the enterprise to be used for generating all additional one-time passwords for all additional users transacting business with the enterprise;

transmitting the generated one time password from the security server to the user via the secure communications channel;

receiving, by the enterprise, the transmitted one time password to the enterprise from the user;

comparing, by the enterprise, the received one time password and a calculated one time password calculated by the enterprise using the secret and the identifier;

and transacting, by the enterprise, the business when the comparison is a match.

View all claims

10 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A method of operating a security server to securely transact business between a user and an enterprise via a network includes receiving, at the security server from an enterprise with which the user is currently connected via the network, a request of the enterprise to activate a secure communications channel over the network between the user and the security server. The request includes contact information for contacting the user via other than the network. The security server, in response, transmits an activation code for delivery to the user via other than the network and in a manner corresponding to the received contact information. The security server receives, from the user via the network, an activation code and compares the received activation code with the transmitted activation code to validate the received activation code. The secure communications channel is then activated based on the validation of the received activation code.

92 Citations

7 Claims

1. A method of operating a security server to securely transact business between a user and an enterprise via a network, comprising:
- receiving, at the security server from an enterprise with which the user is currently connected via the network, a request of the enterprise to activate a secure communications channel over the network between the user and the security server, wherein the request includes contact information for contacting the user via other than the network;
  
  transmitting, by the security server in response to the received activation request, an activation code for delivery to the user via other than the network and corresponding to the received contact information;
  
  receiving, at the security server from the user via the network, an activation code;
  
  comparing, at the security server, the received activation code with the transmitted activation code to validate the received activation code;
  
  activating the secure communications channel based on the validation of the received activation code, wherein the activated secure communications channel is a channel in which data is encrypted based on the validated received activation code;
  
  receiving, at the security server, transaction information including an identifier for identifying the enterprise;
  
  generating, at the security server based on the received transaction information, a one-time password for use by the user as a transaction signature, wherein;
  
  the one-time-password is generated as a function of the identifier and a secret known only by the security server and the enterprise;
  
  and the secret comprises a predetermined value agreed upon by both the security server and the enterprise to be used for generating all additional one-time passwords for all additional users transacting business with the enterprise;
  
  transmitting the generated one time password from the security server to the user via the secure communications channel;
  
  receiving, by the enterprise, the transmitted one time password to the enterprise from the user;
  
  comparing, by the enterprise, the received one time password and a calculated one time password calculated by the enterprise using the secret and the identifier;
  
  and transacting, by the enterprise, the business when the comparison is a match.
- View Dependent Claims (2, 3, 4, 5, 6)
- - 2. The method of claim 1, further comprising:
    - transmitting the received transaction information, from the security server to the user via the secure communications channel, wherein the transaction information comprises an identifier of the enterprise and details of a transaction which the user desires to enter into with the enterprise.
  - 3. The method of claim 2, wherein the enterprise is a first enterprise, the transaction information is first transaction information, and further comprising:
    - receiving, at a security server, second transaction information including an identifier of a second enterprise and details of a second transaction which the user desires to enter into with the second enterprise; and
      
      transmitting the second transaction information, from the security server to the user via the secure communications channel.
  - 4. The method of claim 3, wherein a valid user signature on the second transaction is required by the second enterprise, further comprising:
    - generating, at the security server based on the received second transaction information, a second one-time password for use by the user as a transaction signature;
      
      transmitting the generated second one time password from the security server to the user via the secure communications channel;
      
      receiving, at the security server from the second enterprise, confirmation of receipt by the second enterprise from the user of the second transaction validly signed with the transmitted second one time password; and
      
      transmitting, from the security server to the user via the secure communications channel, confirmation that the second enterprise received the validly signed second transaction.
  - 5. The method of claim 2, further comprising:
    - incorporating, at the security server, the received transaction information into at least one of a voice stream and an image;
      
      wherein the transmitted transaction information is the transaction information incorporated into the at least one of the voice stream and the image.
  - 6. The method of claim 5, wherein the voice stream is a voice stream having a voice recognizable by the user and the image is an image having a background known to the user.

7. A method of operating a security server to securely transact business between a user and an enterprise via a network, comprising:
- receiving, at the security server from the user, a request of the user, including contact information for contacting, the user via other than the network, to activate a secure communications channel over the network between the user and the security server;
  
  transmitting, by the security server to the user via the network response to the received activation request, notification that the secure communications channel is quasi activated;
  
  receiving, at the security server, transaction information including an identifier of an enterprise and details of a transaction which the user desires to enter into with the enterprise;
  
  transmitting, by the security server in response to the received transaction information, an activation code for delivery to the user via other than the network and corresponding to the received contact information;
  
  receiving, at the security server from the user via the network, an activation code;
  
  comparing, at the security server, the received activation code with the transmitted activation code to validate the received activation code;
  
  activating the secure communications channel based on the validation of the received activation code, wherein the activated secure communications channel is a channel in which data is encrypted based on the validated received activation code;
  
  transmitting the transaction information, from the security server to the user via the activated secure communications channel;
  
  generating, at the security server based on the received transaction information, a one-time-password for use by the user as a transaction signature, wherein;
  
  the one-time-password is generated as a function of the identifier and a secret known only by the security server and the enterprise;
  
  and the secret comprises a predetermined value agreed upon by both the security server and the enterprise to be used for generating all additional one-time passwords for all additional users transacting business with the enterprise;
  
  transmitting the generated one time password from the security server to the user via the secure communications channel;
  
  receiving, by the enterprise, the transmitted one time password to the enterprise from the user;
  
  comparing, by the enterprise, the received one time password and a calculated one time, password calculated by the enterprise using the secret and the identifier;
  
  and transacting, by the enterprise, the business when the comparison is a match.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Payfone Incorporated
Original Assignee
Early Warning Services, LLC
Inventors
Tapling, Peter George, Rolfe, Andrew Robert, Ganesan, Ravi
Primary Examiner(s)
Mehedi, Morshed
Assistant Examiner(s)
MCCOY, RICHARD ANTHONY

Application Number

US13/490,677
Publication Number

US 20130333006A1
Time in Patent Office

2,231 Days
Field of Search

713176, 713179-181, 726 5- 9, 705 64, 705 71, 705 75, 705 76
US Class Current
CPC Class Codes

G06F 21/42   using separate channels for...

H04L 63/0428   wherein the data content is...

H04L 63/083   using passwords cryptograph...

H04L 63/18   using different networks or...

H04L 9/3226   using a predetermined code,...

H04L 9/3234   involving additional secure...

H04L 9/3247   involving digital signatures

Enterprise triggered 2CHK association

First Claim

10 Assignments

0 Petitions

Accused Products

Abstract

92 Citations

7 Claims

Specification

Solutions

Use Cases

Quick Links

Enterprise triggered 2CHK association

First Claim

10 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

92 Citations

7 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links